Articles

AVG/GDPR consultancy

Why act?

From May 25th 2018 the GDPR (General Data Protection Regulation) replaces the current privacy legislation in Europe. In dutch it’s called the Algemene Verordening Gegevensbescherming (AVG). The GDPR regulates the processing of personal data. The law forces organisations to implement actions and processes to protect the personal data of your clients, employees or other persons. The (principles of the) GDPR is valid for every organisation in Europe, even in the case of a free-lancer who holds a company. Processing personal data – and therefor risking a dataleak – happens already when sending an e-mail with an invoice or newsletter. Another example of processing is the saving or copyng of any data file with personal data. The goal of the GDPR is to create awareness within organisations about privacy issues and preventing dataleaks. Our advise: prepare your organisation well on juridical, organisational and technical level. Only then you can prevent the organisation from getting huge fines by the Authority Personal data (AP).

What is the ID Control AVG compliancy triangle? It is mandatory for organisations to to maintain a record of processing activities in order to prove that they implemented the appropriate technical and organisational measures to protect the personal data (art. 30 GDPR). Based on this ID Control developed the AVG compliancy triangle.

What to expect from ID Control? ID Control provides for an AVG Assessment Advise report based on analyses of answers to an extensive checklist. The checklist covers all relevant areas of an organisation: HR, legal, operations and IT.

With the Advise report you know exactly how to make your organisation AGDPR-compliant.

Can I do something to get GDPR-compliant? Yes, based on the Advise report you can take matters in your own hand, for example by hiring an DPO (Data Protection Officer), or decide that you need more support in external solutions.

What does the GDPR-assessment phase look like? ID Control BV works with the phasing:

Kick off Workshop(s);

screening

analysis

assessment advise

evaluation

How much does a GDPR-assessment cost? ID Control will do an intake interview and offer free of charge. During the GDPR-Assessmentphase, one or more ID Control consultants will work on your sites. The pricing depends on the amount of cooperation within the organisation, the availability of the information, the nature of the organisation (size, complexity), the ICT-systems and the current level of GDPR-compliancy and information security.

If you want to learn more about GDPR-consultancy, please contact ID Control or download here whitepaper.